You can scan up to 200 assets outside of a regular scan schedule to update all the risks for that asset. This can be useful if you want to verify that changes were successful, instead of waiting for the next scan schedule window. For example, if you have an Agent asset and want to verify that a vulnerability patch was successful, you can initiate an Agent rescan for that asset. If an asset has more than one scan source, such as Internal Vulnerability Assessment (IVA) and Agent, both scans are initiated if you do not change the default settings.

1. Sign in to the Arctic Wolf Unified Portal.
2. Do one of these actions:
   • To rescan assets on the Assets page:
     • In the navigation menu, click Data Collection > Assets.
   • To rescan assets on the Impacted Assets page:
     1. In the navigation menu, click Managed Risk > Risks.
     2. Click the Group by Remediation tab.
     3. For the remediation group that you want to view, in the Impacted Assets column, click the number.
3. Do one of these actions:
   Note:

   You can't rescan an asset if the State is Inactive.

   • Rescan a single asset — For the asset to rescan, in the Actions column, click > Rescan Asset.

   • Bulk rescan multiple assets — Select the checkbox of each asset to rescan, and then click Rescan.

4. In the Rescan Assets for Risks pane, clear the checkbox of any scan types that you do not want to initiate. By default, all scan types are selected.
5. Click Rescan Assets.
   If the scanner associated with the asset is not currently scanning, the scan starts immediately. If it is currently scanning, the scan is added to the scan queue and starts after all scans ahead of it finish.